Item Search

Name	Audit Name	Plugin	Category
1.131 APPL-14-003080	CIS Apple macOS 14 (Sonoma) STIG v1.0.0 CAT II	Unix	IDENTIFICATION AND AUTHENTICATION
2.0 Install & Config - 'Disable SNMPv3'	TNS NetApp Data ONTAP 7G	NetApp	CONFIGURATION MANAGEMENT
2.0 Install & Config - 'Disable SSHv1'	TNS NetApp Data ONTAP 7G	NetApp	CONFIGURATION MANAGEMENT
2.0 Install & Config - 'Disable SSLv2'	TNS NetApp Data ONTAP 7G	NetApp	SYSTEM AND COMMUNICATIONS PROTECTION
2.0 Install & Config - 'Disable Telnet'	TNS NetApp Data ONTAP 7G	NetApp	CONFIGURATION MANAGEMENT
2.0 Install & Config - 'Enable SSHv2'	TNS NetApp Data ONTAP 7G	NetApp	ACCESS CONTROL
2.1 Enable Secure Admin Access - 'autologout.telnet.timeout <= 5'	TNS NetApp Data ONTAP 7G	NetApp	ACCESS CONTROL
2.1 Enable Secure Admin Access - 'ssh.passwd_auth.enable = on'	TNS NetApp Data ONTAP 7G	NetApp	IDENTIFICATION AND AUTHENTICATION
2.1 Enable Secure Admin Access - 'ssh.pubkey_auth.enable = on'	TNS NetApp Data ONTAP 7G	NetApp	CONFIGURATION MANAGEMENT
2.1 Enable Secure Admin Access - 'telnet.distinct.enable = on'	TNS NetApp Data ONTAP 7G	NetApp	ACCESS CONTROL
2.4 Password Security - 'security.passwd.lockout.numtries = 6'	TNS NetApp Data ONTAP 7G	NetApp	ACCESS CONTROL
2.5 Autologout - 'autologout.console.timeout <= 5'	TNS NetApp Data ONTAP 7G	NetApp	ACCESS CONTROL
2.7 Ensure monitoring and alerting exist for SCIM token creation	CIS Snowflake Foundations v1.0.0 L1	Snowflake	AUDIT AND ACCOUNTABILITY
2.8 Protocol Access Controls - 'interface.blocked.cifs is not blank'	TNS NetApp Data ONTAP 7G	NetApp	SYSTEM AND COMMUNICATIONS PROTECTION
2.8 Protocol Access Controls - 'interface.blocked.ftpd has been configured'	TNS NetApp Data ONTAP 7G	NetApp	SYSTEM AND COMMUNICATIONS PROTECTION
2.8 Protocol Access Controls - 'interface.blocked.ndmp has been configured'	TNS NetApp Data ONTAP 7G	NetApp	SYSTEM AND COMMUNICATIONS PROTECTION
2.8 Protocol Access Controls - 'telnet.access has been configured'	TNS NetApp Data ONTAP 7G	NetApp	ACCESS CONTROL
3.1 Storage System (Hardware) Management - 'Change the root account password after each use'	TNS NetApp Data ONTAP 7G	NetApp
3.1 Storage System (Hardware) Management - 'FW version >= 4.0'	TNS NetApp Data ONTAP 7G	NetApp
3.2 Data ONTAP (Software) Mgmt - 'Place e0M on a management VLAN'	TNS NetApp Data ONTAP 7G	NetApp
5.5 NFS - 'cifs.nfs_root_ignore_acl = on'	TNS NetApp Data ONTAP 7G	NetApp	ACCESS CONTROL
5.5 NFS - 'nfs.rpcsec.ctx.high has been configured'	TNS NetApp Data ONTAP 7G	NetApp	CONFIGURATION MANAGEMENT
5.5 NFS - 'nfs.rpcsec.ctx.idle has been configured'	TNS NetApp Data ONTAP 7G	NetApp	ACCESS CONTROL
5.5 NFS - 'nfs.v4.read_delegation = on'	TNS NetApp Data ONTAP 7G	NetApp	CONFIGURATION MANAGEMENT
6.2.5 Ensure that multifactor authentication is required for risky sign-ins	CIS Microsoft Azure Foundations v4.0.0 L2	microsoft_azure	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION
CISC-L2-000020 - The Cisco switch must uniquely identify all network-connected endpoint devices before establishing any connection.	DISA Cisco NX OS Switch L2S STIG v3r2	Cisco	IDENTIFICATION AND AUTHENTICATION
CISC-L2-000020 - The Cisco switch must uniquely identify and authenticate all network-connected endpoint devices before establishing any connection.	DISA Cisco IOS Switch L2S STIG v3r1	Cisco	IDENTIFICATION AND AUTHENTICATION
CISC-L2-000020 - The Cisco switch must uniquely identify and authenticate all network-connected endpoint devices before establishing any connection.	DISA Cisco IOS XE Switch L2S STIG v3r2	Cisco	IDENTIFICATION AND AUTHENTICATION
DG0095-ORACLE11 - Audit trail data should be reviewed daily or more frequently.	DISA STIG Oracle 11 Installation v9r1 Linux	Unix
F5BI-AS-000167 - The BIG-IP ASM module must be configured to detect code injection attacks launched against application objects including, at a minimum, application URLs and application code, when providing content filtering to virtual servers.	DISA F5 BIG-IP Application Security Manager STIG v2r2	F5	ACCESS CONTROL
MS.AAD.4.1v1 - Security logs SHALL be sent to the agency's security operations center for monitoring.	CISA SCuBA Microsoft 365 Entra ID v1.5.0	microsoft_azure	ACCESS CONTROL, CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION
OL08-00-040300 - The OL 8 file integrity tool must be configured to verify extended attributes.	DISA Oracle Linux 8 STIG v2r5	Unix	CONFIGURATION MANAGEMENT
OL09-00-002394 - OL 9 must clear the page allocator to prevent use-after-free attacks.	DISA Oracle Linux 9 STIG v1r2	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
RHEL-08-040300 - The RHEL 8 file integrity tool must be configured to verify extended attributes.	DISA Red Hat Enterprise Linux 8 STIG v2r4	Unix	CONFIGURATION MANAGEMENT
SQL2-00-013400 - SQL Server must audit attempts to bypass access controls - 'Event ID 14'	DISA STIG SQL Server 2012 DB Instance Security v1r20	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL2-00-013400 - SQL Server must audit attempts to bypass access controls - 'Event ID 15'	DISA STIG SQL Server 2012 DB Instance Security v1r20	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL2-00-013400 - SQL Server must audit attempts to bypass access controls - 'Event ID 18'	DISA STIG SQL Server 2012 DB Instance Security v1r20	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL2-00-013400 - SQL Server must audit attempts to bypass access controls - 'Event ID 20'	DISA STIG SQL Server 2012 DB Instance Security v1r20	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL2-00-013400 - SQL Server must audit attempts to bypass access controls - 'Event ID 102'	DISA STIG SQL Server 2012 DB Instance Security v1r20	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL2-00-013400 - SQL Server must audit attempts to bypass access controls - 'Event ID 103'	DISA STIG SQL Server 2012 DB Instance Security v1r20	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL2-00-013400 - SQL Server must audit attempts to bypass access controls - 'Event ID 106'	DISA STIG SQL Server 2012 DB Instance Security v1r20	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL2-00-013400 - SQL Server must audit attempts to bypass access controls - 'Event ID 115'	DISA STIG SQL Server 2012 DB Instance Security v1r20	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL2-00-013400 - SQL Server must audit attempts to bypass access controls - 'Event ID 132'	DISA STIG SQL Server 2012 DB Instance Security v1r20	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL2-00-013400 - SQL Server must audit attempts to bypass access controls - 'Event ID 153'	DISA STIG SQL Server 2012 DB Instance Security v1r20	MS_SQLDB	AUDIT AND ACCOUNTABILITY
SQL2-00-013400 - SQL Server must audit attempts to bypass access controls - 'Event ID 176'	DISA STIG SQL Server 2012 DB Instance Security v1r20	MS_SQLDB	AUDIT AND ACCOUNTABILITY
WBLC-02-000086 - Oracle WebLogic must notify administrative personnel as a group in the event of audit processing failure - Module-HealthState	Oracle WebLogic Server 12c Linux v2r2 Middleware	Unix	AUDIT AND ACCOUNTABILITY
WBLC-02-000086 - Oracle WebLogic must notify administrative personnel as a group in the event of audit processing failure - Module-HealthState	Oracle WebLogic Server 12c Windows v2r2	Windows	AUDIT AND ACCOUNTABILITY
WBLC-02-000086 - Oracle WebLogic must notify administrative personnel as a group in the event of audit processing failure - SMTP Notification	Oracle WebLogic Server 12c Linux v2r2	Unix	AUDIT AND ACCOUNTABILITY
WBLC-02-000086 - Oracle WebLogic must notify administrative personnel as a group in the event of audit processing failure - SMTP Notification	Oracle WebLogic Server 12c Windows v2r2	Windows	AUDIT AND ACCOUNTABILITY
WBLC-02-000086 - Oracle WebLogic must notify administrative personnel as a group in the event of audit processing failure - SMTP Notification	Oracle WebLogic Server 12c Linux v2r2 Middleware	Unix	AUDIT AND ACCOUNTABILITY

Detections

Analytics

Item Search